$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/B3DED5C6BAC911EB8533B615C4F9AE02.roa File: B3DED5C6BAC911EB8533B615C4F9AE02.roa (raw, json) Hash identifier: hmAGFwidME91Z2OtLaYKm7U/7KLzuVveNkUXIAOlTec= Subject key identifier: 27:11:2B:0E:8F:5E:6D:1D:E3:ED:FE:60:4D:F4:8B:05:10:35:03:E6 Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 066B Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/B3DED5C6BAC911EB8533B615C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:49:35 +0000 ROA not before: Sun 04 May 2025 23:04:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131447 IP address blocks: 103.7.56.0/22 maxlen: 23 150.107.28.0/22 maxlen: 22 150.107.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:16:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: May 4 23:04:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40bae-5152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ce:0d:a6:17:5c:99:bf:19:f9:22:e9:aa:80: 91:9c:c6:96:90:af:88:7f:78:d7:f9:3b:07:a4:21: 67:8f:c9:8e:ad:05:77:17:9d:89:6b:da:a7:97:6f: 7f:88:95:bd:63:42:b9:6f:55:a4:22:70:af:42:44: 1b:a4:be:cb:25:5c:95:d6:23:43:40:83:11:39:09: 2d:2e:57:45:da:1a:6b:63:ca:0d:35:77:22:fd:a8: f4:6c:30:bc:a9:c5:61:bf:16:f9:a9:82:da:e7:ff: fb:21:61:b3:29:29:ab:b0:75:9d:c4:36:ce:32:7f: bd:0c:ba:dc:d2:54:d3:b2:98:e3:c8:94:39:34:9f: 21:2b:2f:d0:e3:6a:79:4f:42:99:2e:28:1f:32:6d: 0d:66:d6:a8:1f:37:88:9a:3f:53:5c:9f:0f:92:be: 0b:58:f6:41:e3:6c:d8:14:58:dc:20:78:e1:3d:23: 9d:d2:ba:e0:0a:81:96:e8:a4:fc:41:92:2b:f7:9c: 80:a9:d0:2f:5e:59:c4:af:f4:b3:c7:02:12:04:3d: e0:fb:af:f7:d6:8b:ad:af:83:82:3c:9d:cc:20:23: dd:c9:fc:90:3b:a4:2c:8f:86:88:1a:de:ca:87:48: e5:51:19:4a:e7:05:23:25:1f:e7:34:40:02:a8:66: 68:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:11:2B:0E:8F:5E:6D:1D:E3:ED:FE:60:4D:F4:8B:05:10:35:03:E6 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/B3DED5C6BAC911EB8533B615C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.7.56.0/22 150.107.28.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:91:7f:d9:0d:43:94:43:bb:74:0a:4e:3c:8b:e5:73:76:36: 44:c6:7d:a9:d6:a4:ba:e4:8f:d8:7e:d1:05:93:79:3d:a3:a5: 9b:4c:e0:b6:07:6d:7a:17:80:ac:1c:89:1e:3b:f8:6e:33:8b: 28:1c:b5:e0:1e:5b:c9:94:45:e6:fe:f1:fa:8c:63:4d:e7:07: 75:5a:69:d1:7d:05:3d:48:a7:9f:b6:7a:ac:83:85:b9:14:0a: 99:a6:ba:b2:81:f8:8c:79:91:6d:93:64:de:3d:72:b6:5c:32: 58:66:d2:19:89:2d:bb:55:b9:b0:7b:5f:47:93:82:83:d6:af: c9:08:7e:ad:bd:04:16:80:6c:82:4a:93:4f:30:ae:6d:9d:f8: f9:1e:59:48:0a:c2:6f:5b:fc:66:a6:8b:f2:5f:22:be:05:fd: 6f:4b:64:b5:bb:ae:d3:23:a7:22:6a:26:5b:42:b9:a4:c3:ca: f0:50:48:65:74:a3:2f:b4:23:06:a8:8e:e7:1f:a1:70:4f:60: bb:75:7e:87:f8:ec:ac:d3:54:2e:db:b8:0b:d7:5d:aa:9a:8d: 7e:11:62:b8:4d:dd:50:fd:7a:2a:16:e5:38:d9:7f:e8:a7:3c: 3d:32:5c:aa:91:11:ab:7b:5f:72:ea:be:e7:32:13:78:e9:39: 34:2a:1d:56 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwNTA0MjMwNDAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGJhZS01MTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApM4Nphdcmb8Z+SLpqoCRnMaWkK+If3jX+TsHpCFnj8mOrQV3F52Ja9qnl29/ iJW9Y0K5b1WkInCvQkQbpL7LJVyV1iNDQIMROQktLldF2hprY8oNNXci/aj0bDC8 qcVhvxb5qYLa5//7IWGzKSmrsHWdxDbOMn+9DLrc0lTTspjjyJQ5NJ8hKy/Q42p5 T0KZLigfMm0NZtaoHzeImj9TXJ8Pkr4LWPZB42zYFFjcIHjhPSOd0rrgCoGW6KT8 QZIr95yAqdAvXlnEr/SzxwISBD3g+6/31outr4OCPJ3MICPdyfyQO6Qsj4aIGt7K h0jlURlK5wUjJR/nNEACqGZotwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCcRKw6P Xm0d4+3+YE30iwUQNQPmMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBDOTUvREUyRkYxRjRCQUM3MTFFQkFGMkU2ODEzQzRGOUFFMDIvQjNERUQ1QzZC QUM5MTFFQjg1MzNCNjE1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZwc4AwQClmscMA0GCSqGSIb3DQEBCwUAA4IBAQCOkX/ZDUOUQ7t0 Ck48i+VzdjZExn2p1qS65I/YftEFk3k9o6WbTOC2B216F4CsHIkeO/huM4soHLXg HlvJlEXm/vH6jGNN5wd1WmnRfQU9SKeftnqsg4W5FAqZprqygfiMeZFtk2TePXK2 XDJYZtIZiS27Vbmwe19Hk4KD1q/JCH6tvQQWgGyCSpNPMK5tnfj5HllICsJvW/xm povyXyK+Bf1vS2S1u67TI6ciaiZbQrmkw8rwUEhldKMvtCMGqI7nH6FwT2C7dX6H +Oys01Qu27gL112qmo1+EWK4Td1Q/XoqFuU42X/opzw9MlyqkRGre19y6r7nMhN4 6Tk0Kh1W -----END CERTIFICATE-----Generated at Thu Mar 26 12:53:25 2026 by rpki-client